1 /* crypto/evp/encode.c */
2 /* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com)
5 * This package is an SSL implementation written
6 * by Eric Young (eay@cryptsoft.com).
7 * The implementation was written so as to conform with Netscapes SSL.
9 * This library is free for commercial and non-commercial use as long as
10 * the following conditions are aheared to. The following conditions
11 * apply to all code found in this distribution, be it the RC4, RSA,
12 * lhash, DES, etc., code; not just the SSL code. The SSL documentation
13 * included with this distribution is covered by the same copyright terms
14 * except that the holder is Tim Hudson (tjh@cryptsoft.com).
16 * Copyright remains Eric Young's, and as such any Copyright notices in
17 * the code are not to be removed.
18 * If this package is used in a product, Eric Young should be given attribution
19 * as the author of the parts of the library used.
20 * This can be in the form of a textual message at program startup or
21 * in documentation (online or textual) provided with the package.
23 * Redistribution and use in source and binary forms, with or without
24 * modification, are permitted provided that the following conditions
26 * 1. Redistributions of source code must retain the copyright
27 * notice, this list of conditions and the following disclaimer.
28 * 2. Redistributions in binary form must reproduce the above copyright
29 * notice, this list of conditions and the following disclaimer in the
30 * documentation and/or other materials provided with the distribution.
31 * 3. All advertising materials mentioning features or use of this software
32 * must display the following acknowledgement:
33 * "This product includes cryptographic software written by
34 * Eric Young (eay@cryptsoft.com)"
35 * The word 'cryptographic' can be left out if the rouines from the library
36 * being used are not cryptographic related :-).
37 * 4. If you include any Windows specific code (or a derivative thereof) from
38 * the apps directory (application code) you must include an acknowledgement:
39 * "This product includes software written by Tim Hudson (tjh@cryptsoft.com)"
41 * THIS SOFTWARE IS PROVIDED BY ERIC YOUNG ``AS IS'' AND
42 * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
43 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
44 * ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE
45 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
46 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
47 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
48 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
49 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
50 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
53 * The licence and distribution terms for any publically available version or
54 * derivative of this code cannot be changed. i.e. this code cannot simply be
55 * copied and put under another distribution licence
56 * [including the GNU Public Licence.]
61 #include <openssl/evp.h>
63 static unsigned char conv_ascii2bin(unsigned char a);
64 #ifndef CHARSET_EBCDIC
65 # define conv_bin2ascii(a) (data_bin2ascii[(a)&0x3f])
68 * We assume that PEM encoded files are EBCDIC files (i.e., printable text
69 * files). Convert them here while decoding. When encoding, output is EBCDIC
70 * (text) format again. (No need for conversion in the conv_bin2ascii macro,
71 * as the underlying textstring data_bin2ascii[] is already EBCDIC)
73 # define conv_bin2ascii(a) (data_bin2ascii[(a)&0x3f])
79 * left over chars are set to =
84 #define BIN_PER_LINE (64/4*3)
85 #define CHUNKS_PER_LINE (64/4)
86 #define CHAR_PER_LINE (64+1)
88 static const unsigned char data_bin2ascii[65] = "ABCDEFGHIJKLMNOPQRSTUVWXYZ\
89 abcdefghijklmnopqrstuvwxyz0123456789+/";
93 * 0xF1 is ignore but next needs to be 0xF0 (for \r\n processing).
95 * 0xE0 is ignore at start of line.
103 #define B64_ERROR 0xFF
104 #define B64_NOT_BASE64(a) (((a)|0x13) == 0xF3)
105 #define B64_BASE64(a) !B64_NOT_BASE64(a)
107 static const unsigned char data_ascii2bin[128] = {
108 0xFF, 0xFF, 0xFF, 0xFF, 0xFF, 0xFF, 0xFF, 0xFF,
109 0xFF, 0xE0, 0xF0, 0xFF, 0xFF, 0xF1, 0xFF, 0xFF,
110 0xFF, 0xFF, 0xFF, 0xFF, 0xFF, 0xFF, 0xFF, 0xFF,
111 0xFF, 0xFF, 0xFF, 0xFF, 0xFF, 0xFF, 0xFF, 0xFF,
112 0xE0, 0xFF, 0xFF, 0xFF, 0xFF, 0xFF, 0xFF, 0xFF,
113 0xFF, 0xFF, 0xFF, 0x3E, 0xFF, 0xF2, 0xFF, 0x3F,
114 0x34, 0x35, 0x36, 0x37, 0x38, 0x39, 0x3A, 0x3B,
115 0x3C, 0x3D, 0xFF, 0xFF, 0xFF, 0x00, 0xFF, 0xFF,
116 0xFF, 0x00, 0x01, 0x02, 0x03, 0x04, 0x05, 0x06,
117 0x07, 0x08, 0x09, 0x0A, 0x0B, 0x0C, 0x0D, 0x0E,
118 0x0F, 0x10, 0x11, 0x12, 0x13, 0x14, 0x15, 0x16,
119 0x17, 0x18, 0x19, 0xFF, 0xFF, 0xFF, 0xFF, 0xFF,
120 0xFF, 0x1A, 0x1B, 0x1C, 0x1D, 0x1E, 0x1F, 0x20,
121 0x21, 0x22, 0x23, 0x24, 0x25, 0x26, 0x27, 0x28,
122 0x29, 0x2A, 0x2B, 0x2C, 0x2D, 0x2E, 0x2F, 0x30,
123 0x31, 0x32, 0x33, 0xFF, 0xFF, 0xFF, 0xFF, 0xFF,
126 #ifndef CHARSET_EBCDIC
127 static unsigned char conv_ascii2bin(unsigned char a)
131 return data_ascii2bin[a];
134 static unsigned char conv_ascii2bin(unsigned char a)
139 return data_ascii2bin[a];
143 void EVP_EncodeInit(EVP_ENCODE_CTX *ctx)
150 void EVP_EncodeUpdate(EVP_ENCODE_CTX *ctx, unsigned char *out, int *outl,
151 const unsigned char *in, int inl)
154 unsigned int total = 0;
159 OPENSSL_assert(ctx->length <= (int)sizeof(ctx->enc_data));
160 if ((ctx->num + inl) < ctx->length) {
161 memcpy(&(ctx->enc_data[ctx->num]), in, inl);
166 i = ctx->length - ctx->num;
167 memcpy(&(ctx->enc_data[ctx->num]), in, i);
170 j = EVP_EncodeBlock(out, ctx->enc_data, ctx->length);
177 while (inl >= ctx->length) {
178 j = EVP_EncodeBlock(out, in, ctx->length);
187 memcpy(&(ctx->enc_data[0]), in, inl);
192 void EVP_EncodeFinal(EVP_ENCODE_CTX *ctx, unsigned char *out, int *outl)
194 unsigned int ret = 0;
197 ret = EVP_EncodeBlock(out, ctx->enc_data, ctx->num);
205 int EVP_EncodeBlock(unsigned char *t, const unsigned char *f, int dlen)
210 for (i = dlen; i > 0; i -= 3) {
212 l = (((unsigned long)f[0]) << 16L) |
213 (((unsigned long)f[1]) << 8L) | f[2];
214 *(t++) = conv_bin2ascii(l >> 18L);
215 *(t++) = conv_bin2ascii(l >> 12L);
216 *(t++) = conv_bin2ascii(l >> 6L);
217 *(t++) = conv_bin2ascii(l);
219 l = ((unsigned long)f[0]) << 16L;
221 l |= ((unsigned long)f[1] << 8L);
223 *(t++) = conv_bin2ascii(l >> 18L);
224 *(t++) = conv_bin2ascii(l >> 12L);
225 *(t++) = (i == 1) ? '=' : conv_bin2ascii(l >> 6L);
236 void EVP_DecodeInit(EVP_ENCODE_CTX *ctx)
238 /* Only ctx->num is used during decoding. */
250 * Note: even though EVP_DecodeUpdate attempts to detect and report end of
251 * content, the context doesn't currently remember it and will accept more data
252 * in the next call. Therefore, the caller is responsible for checking and
253 * rejecting a 0 return value in the middle of content.
255 * Note: even though EVP_DecodeUpdate has historically tried to detect end of
256 * content based on line length, this has never worked properly. Therefore,
257 * we now return 0 when one of the following is true:
258 * - Padding or B64_EOF was detected and the last block is complete.
259 * - Input has zero-length.
261 * - Invalid characters are detected.
262 * - There is extra trailing padding, or data after padding.
263 * - B64_EOF is detected after an incomplete base64 block.
265 int EVP_DecodeUpdate(EVP_ENCODE_CTX *ctx, unsigned char *out, int *outl,
266 const unsigned char *in, int inl)
268 int seof = 0, eof = 0, rv = -1, ret = 0, i, v, tmp, n, decoded_len;
274 if (n > 0 && d[n - 1] == '=') {
276 if (n > 1 && d[n - 2] == '=')
280 /* Legacy behaviour: an empty input chunk signals end of input. */
286 for (i = 0; i < inl; i++) {
288 v = conv_ascii2bin(tmp);
289 if (v == B64_ERROR) {
296 } else if (eof > 0 && B64_BASE64(v)) {
297 /* More data after padding. */
312 /* Only save valid base64 characters. */
316 * We increment n once per loop, and empty the buffer as soon as
317 * we reach 64 characters, so this can only happen if someone's
318 * manually messed with the ctx. Refuse to write any more data.
323 OPENSSL_assert(n < (int)sizeof(ctx->enc_data));
328 decoded_len = EVP_DecodeBlock(out, d, n);
330 if (decoded_len < 0 || eof > decoded_len) {
334 ret += decoded_len - eof;
335 out += decoded_len - eof;
340 * Legacy behaviour: if the current line is a full base64-block (i.e., has
341 * 0 mod 4 base64 characters), it is processed immediately. We keep this
342 * behaviour as applications may not be calling EVP_DecodeFinal properly.
347 decoded_len = EVP_DecodeBlock(out, d, n);
349 if (decoded_len < 0 || eof > decoded_len) {
353 ret += (decoded_len - eof);
355 /* EOF in the middle of a base64 block. */
361 rv = seof || (n == 0 && eof) ? 0 : 1;
363 /* Legacy behaviour. This should probably rather be zeroed on error. */
369 int EVP_DecodeBlock(unsigned char *t, const unsigned char *f, int n)
371 int i, ret = 0, a, b, c, d;
374 /* trim white space from the start of the line. */
375 while ((conv_ascii2bin(*f) == B64_WS) && (n > 0)) {
381 * strip off stuff at the end of the line ascii2bin values B64_WS,
382 * B64_EOLN, B64_EOLN and B64_EOF
384 while ((n > 3) && (B64_NOT_BASE64(conv_ascii2bin(f[n - 1]))))
390 for (i = 0; i < n; i += 4) {
391 a = conv_ascii2bin(*(f++));
392 b = conv_ascii2bin(*(f++));
393 c = conv_ascii2bin(*(f++));
394 d = conv_ascii2bin(*(f++));
395 if ((a & 0x80) || (b & 0x80) || (c & 0x80) || (d & 0x80))
397 l = ((((unsigned long)a) << 18L) |
398 (((unsigned long)b) << 12L) |
399 (((unsigned long)c) << 6L) | (((unsigned long)d)));
400 *(t++) = (unsigned char)(l >> 16L) & 0xff;
401 *(t++) = (unsigned char)(l >> 8L) & 0xff;
402 *(t++) = (unsigned char)(l) & 0xff;
408 int EVP_DecodeFinal(EVP_ENCODE_CTX *ctx, unsigned char *out, int *outl)
414 i = EVP_DecodeBlock(out, ctx->enc_data, ctx->num);
425 int EVP_DecodeValid(unsigned char *buf, int len)
427 int i, num = 0, bad = 0;
431 while (conv_ascii2bin(*buf) == B64_WS) {
438 for (i = len; i >= 4; i -= 4) {
439 if ((conv_ascii2bin(buf[0]) >= 0x40) ||
440 (conv_ascii2bin(buf[1]) >= 0x40) ||
441 (conv_ascii2bin(buf[2]) >= 0x40) ||
442 (conv_ascii2bin(buf[3]) >= 0x40))
445 num += 1 + (buf[2] != '=') + (buf[3] != '=');
447 if ((i == 1) && (conv_ascii2bin(buf[0]) == B64_EOLN))
449 if ((i == 2) && (conv_ascii2bin(buf[0]) == B64_EOLN) &&
450 (conv_ascii2bin(buf[0]) == B64_EOLN))